Vish
05/10/2024, 4:58 AMcerbos.sock
file that cerbos pdp is listening to in my shared volume is owned by root
, but my application is running under the node
user and group and is getting a EACCES
error when trying to access the cerbos.sock
file, how can i go about resolving this? I have verified by executing a shell as root user and manually changing the file ownership with `chown`in my application container to the node
user and group resolves the error. Thanksoguzhan
udsFileMode
available in the Cerbos configuration:
server:
udsFileMode: 0o766 # UDSFileMode sets the file mode of the unix domain sockets created by the server.
Vish
05/10/2024, 7:42 AMchmod
, I guess i'd need the equivalent of a chown
insteadCharith (Cerbos)
udsFileMode
to 777
would work. Alternatively, you can use an init container to create the socket file in advance with the permissions you need. Cerbos only creates the socket file if it doesn't already exist.Charith (Cerbos)
Vish
05/10/2024, 9:06 AM